What is the severity of CVE-2023-7187?

CVE-2023-7187 has been rated as critical due to its potentially serious implications.

How does CVE-2023-7187 affect the Totolink N350RT router?

CVE-2023-7187 affects the processing of specific POST requests within the router's HTTP request handler.

What is the impact of exploiting CVE-2023-7187?

Exploiting CVE-2023-7187 can lead to stack-based buffer overflows, potentially allowing attackers to execute arbitrary code.

How do I fix CVE-2023-7187?

To fix CVE-2023-7187, it is recommended to update the firmware of the Totolink N350RT router to a secure version.

What versions of Totolink N350RT are affected by CVE-2023-7187?

CVE-2023-7187 affects Totolink N350RT firmware version 9.3.5u.6139_B20201216.

Vulnerability/
CVE-2023-7187

high

8.8

CWE

121 119

EPSS

0.049%

31/12/2023

2/8/2024

CVE-2023-7187: Totolink N350RT HTTP POST Request stack-based overflow

First published: Sun Dec 31 2023(Updated: )

A vulnerability was found in Totolink N350RT 9.3.5u.6139_B20201216. It has been rated as critical. This issue affects some unknown processing of the file /cgi-bin/cstecgi.cgi?action=login&flag=ie8 of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The exploit has been disclosed to the public and may be used. The identifier VDB-249389 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Credit: cna@vuldb.com

Affected Software	Affected Version	How to fix
All of
	=9.3.5u.6139_b20201216

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2023-7187?
CVE-2023-7187 has been rated as critical due to its potentially serious implications.
How does CVE-2023-7187 affect the Totolink N350RT router?
CVE-2023-7187 affects the processing of specific POST requests within the router's HTTP request handler.
What is the impact of exploiting CVE-2023-7187?
Exploiting CVE-2023-7187 can lead to stack-based buffer overflows, potentially allowing attackers to execute arbitrary code.
How do I fix CVE-2023-7187?
To fix CVE-2023-7187, it is recommended to update the firmware of the Totolink N350RT router to a secure version.
What versions of Totolink N350RT are affected by CVE-2023-7187?
CVE-2023-7187 affects Totolink N350RT firmware version 9.3.5u.6139_B20201216.

agent/type
agent/first-publish-date
agent/severity
agent/title
agent/weakness
agent/author
agent/references
agent/description
collector/epss-latest
source/FIRST
agent/epss
agent/softwarecombine
agent/event
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/source
vendor/totolink
canonical/totolink n350rt firmware
version/totolink n350rt firmware/9.3.5u.6139_b20201216
canonical/totolink n350rt

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.